$ rpki-client -vvf rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/70F15C5CC5CA11EEA9DD0141C4F9AE02.roa File: 70F15C5CC5CA11EEA9DD0141C4F9AE02.roa (raw, json) Hash identifier: xPQadE04npUnqYnM7fwo9/dno/2PvI183Yb0K4hPxZQ= Subject key identifier: 4B:84:9D:DA:30:F9:28:56:4A:70:D6:C4:E1:91:E1:EB:DE:4E:A0:54 Certificate issuer: /CN=A919B06C/serialNumber=C83493C0297CCB58D2837946D6063F14A7DEE986 Certificate serial: 0D63 Authority key identifier: C8:34:93:C0:29:7C:CB:58:D2:83:79:46:D6:06:3F:14:A7:DE:E9:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/70F15C5CC5CA11EEA9DD0141C4F9AE02.roa Signing time: Mon 22 Apr 2024 18:26:01 +0000 ROA not before: Mon 22 Apr 2024 18:26:01 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 18230 IP address blocks: 59.152.8.0/24 maxlen: 24 59.152.9.0/24 maxlen: 24 59.152.10.0/24 maxlen: 24 59.152.11.0/24 maxlen: 24 59.152.12.0/24 maxlen: 24 59.152.13.0/24 maxlen: 24 2404:1b40::/32 maxlen: 32 2404:1b40::/48 maxlen: 48 2404:1b40:1::/48 maxlen: 48 2404:1b40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.crl rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B06C/serialNumber=C83493C0297CCB58D2837946D6063F14A7DEE986 Validity Not Before: Apr 22 18:26:01 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6626abb9-43d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0a:fe:ac:fb:63:11:f9:78:d8:e0:43:0c:e7: a4:33:45:b2:74:74:1c:c6:9f:05:c6:e6:3b:e4:70: df:8d:94:61:04:0e:ac:49:45:25:3d:ab:08:b5:2b: e3:7d:77:ea:54:f6:ab:c5:06:09:ec:1e:8e:41:ed: ea:c1:73:5e:ec:19:58:89:2f:08:b5:59:aa:fb:90: 11:9a:31:c1:1b:8c:d3:30:84:f9:a3:b8:6d:a8:66: 45:60:20:cc:4e:d9:ee:f8:42:98:0e:ff:92:8e:f9: 55:6f:aa:0a:f4:05:24:55:d9:dc:13:39:3a:e3:51: 79:c3:67:64:a9:be:8b:6e:be:4e:b9:a5:44:63:05: fc:f9:1f:8b:fc:f5:e0:53:83:63:54:ec:a2:ac:f9: 3e:7f:02:d4:ed:cb:aa:de:b9:0a:60:ec:56:67:4f: 43:68:dc:2a:c4:b2:43:10:9a:f5:80:54:b8:95:df: 62:82:bc:72:0d:64:3a:9d:e0:99:d6:61:c9:06:46: e1:84:0a:b0:7c:da:47:60:ac:1e:b3:bf:20:98:b0: 59:04:9a:51:10:61:55:e7:28:d2:30:d4:e6:bc:bd: 94:75:a9:de:af:dd:f6:ae:66:49:d3:49:d2:3f:64: a0:d4:cb:01:64:3d:f3:4a:07:3e:84:6c:19:a5:a7: b1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:84:9D:DA:30:F9:28:56:4A:70:D6:C4:E1:91:E1:EB:DE:4E:A0:54 X509v3 Authority Key Identifier: keyid:C8:34:93:C0:29:7C:CB:58:D2:83:79:46:D6:06:3F:14:A7:DE:E9:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/yDSTwCl8y1jSg3lG1gY_FKfe6YY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yDSTwCl8y1jSg3lG1gY_FKfe6YY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B06C/E9D62E74FEAE11E8910D4D66C4F9AE02/70F15C5CC5CA11EEA9DD0141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.8.0-59.152.13.255 IPv6: 2404:1b40::/32 Signature Algorithm: sha256WithRSAEncryption 56:f2:11:fc:02:c9:6e:ac:00:20:c9:81:c3:b6:91:e6:2e:29: 4b:14:51:f0:cc:89:af:64:f6:51:c5:49:99:e5:f3:86:e3:3f: fd:3f:3b:dd:eb:de:5a:92:8e:ea:4a:5b:dc:b3:19:89:96:8b: c1:cb:f8:b1:69:6d:c1:b2:27:58:83:8c:37:9d:34:ba:0e:a0: 7f:af:0f:6c:39:9f:a1:25:b6:a5:0a:18:96:e7:80:e6:97:6d: 2a:20:19:f2:fb:34:89:14:e6:e0:64:87:32:44:a2:68:2c:4b: f0:b7:8c:ca:63:c4:c0:df:e9:55:18:61:c2:08:ef:3d:86:d3: 04:be:3b:1a:ef:53:17:d3:41:fd:10:5b:c6:86:a7:67:e3:6f: 42:a1:f4:f5:a8:da:e3:d9:b2:9e:a5:98:77:95:db:27:37:59: d9:89:44:be:86:23:07:37:7a:ee:ed:54:74:83:c6:ff:16:79: e8:b0:06:96:fe:c8:b4:45:9b:fd:0d:de:93:75:43:1f:1e:64: 35:34:d2:8d:9c:e0:e1:45:fc:39:b5:ad:ea:13:a9:88:3e:f3: 38:4e:72:38:0d:2b:17:b0:8b:a8:84:94:a0:69:20:ed:d1:a1: 2e:57:a9:7f:67:f0:7e:55:41:c0:46:65:bf:dd:0b:44:fc:08: 82:c8:ff:02 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIwNkMxMTAvBgNVBAUTKEM4MzQ5M0MwMjk3Q0NCNThEMjgzNzk0NkQ2MDYzRjE0 QTdERUU5ODYwHhcNMjQwNDIyMTgyNjAxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2YWJiOS00M2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAr+rPtjEfl42OBDDOekM0WydHQcxp8FxuY75HDfjZRhBA6sSUUlPasItSvj fXfqVParxQYJ7B6OQe3qwXNe7BlYiS8ItVmq+5ARmjHBG4zTMIT5o7htqGZFYCDM Ttnu+EKYDv+SjvlVb6oK9AUkVdncEzk641F5w2dkqb6Lbr5OuaVEYwX8+R+L/PXg U4NjVOyirPk+fwLU7cuq3rkKYOxWZ09DaNwqxLJDEJr1gFS4ld9igrxyDWQ6neCZ 1mHJBkbhhAqwfNpHYKwes78gmLBZBJpREGFV5yjSMNTmvL2Udaner932rmZJ00nS P2Sg1MsBZD3zSgc+hGwZpaexzwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEuEndow +ShWSnDWxOGR4eveTqBUMB8GA1UdIwQYMBaAFMg0k8ApfMtY0oN5RtYGPxSn3umG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjA2Qy9FOUQ2MkU3NEZF QUUxMUU4OTEwRDRENjZDNEY5QUUwMi95RFNUd0NsOHkxalNnM2xHMWdZX0ZLZmU2 WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lEU1R3Q2w4eTFqU2czbEcxZ1lfRktmZTZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIwNkMvRTlENjJFNzRGRUFFMTFFODkxMEQ0RDY2QzRGOUFFMDIvNzBGMTVDNUND NUNBMTFFRUE5REQwMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAzuYCAMEATuYDDANBAIAAjAHAwUAJAQbQDANBgkqhkiG 9w0BAQsFAAOCAQEAVvIR/ALJbqwAIMmBw7aR5i4pSxRR8MyJr2T2UcVJmeXzhuM/ /T873eveWpKO6kpb3LMZiZaLwcv4sWltwbInWIOMN500ug6gf68PbDmfoSW2pQoY lueA5pdtKiAZ8vs0iRTm4GSHMkSiaCxL8LeMymPEwN/pVRhhwgjvPYbTBL47Gu9T F9NB/RBbxoanZ+NvQqH09aja49mynqWYd5XbJzdZ2YlEvoYjBzd67u1UdIPG/xZ5 6LAGlv7ItEWb/Q3ek3VDHx5kNTTSjZzg4UX8ObWt6hOpiD7zOE5yOA0rF7CLqISU oGkg7dGhLlepf2fwflVBwEZlv90LRPwIgsj/Ag== -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org